Russian Vulnerability Scanner Database

Back to List

CVE-2019-1653

Scores

EPSS Score

0.9437

CVSS

3.x 7.5

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

All CVSS Scores

CVSS 4.0
0.0
CVSS 3.x
7.5

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CVSS 2.0
5.0

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

Description

A vulnerability in the web-based management interface of Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers could allow an unauthenticated, remote attacker to retrieve sensitive information. The vulnerability is due to improper access controls for URLs. An attacker could exploit this vulnerability by connecting to an affected device via HTTP or HTTPS and requesting specific URLs. A successful exploit could allow the attacker to download the router configuration or detailed diagnostic information. Cisco has released firmware updates that address this vulnerability.

Sources

nvd

CWEs

CWE-200

Related Vulnerabilities

BDU:2019-00340

Exploits

Exploit ID: 46262

Source: exploitdb

URL: https://www.exploit-db.com/exploits/46262

Exploit ID: 46655

Source: exploitdb

URL: https://www.exploit-db.com/exploits/46655

Exploit ID: CVE-2019-1653

Source: github-poc

URL: https://github.com/elzerjp/nuclei-CiscoRV320Dump-CVE-2019-1653

Reference Links

http://packetstormsecurity.com/files/152260/Cisco-RV320-Unauthenticated-Configuration-Export.html
http://packetstormsecurity.com/files/152261/Cisco-RV320-Unauthenticated-Diagnostic-Data-Retrieval.html
http://packetstormsecurity.com/files/152305/Cisco-RV320-RV325-Unauthenticated-Remote-Code-Execution.html
http://seclists.org/fulldisclosure/2019/Mar/59
http://seclists.org/fulldisclosure/2019/Mar/60
http://www.securityfocus.com/bid/106732
https://badpackets.net/over-9000-cisco-rv320-rv325-routers-vulnerable-to-cve-2019-1653/
https://seclists.org/bugtraq/2019/Mar/53
https://seclists.org/bugtraq/2019/Mar/54
https://threatpost.com/scans-cisco-routers-code-execution/141218/
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190123-rv-info
https://www.exploit-db.com/exploits/46262/
https://www.exploit-db.com/exploits/46655/
https://www.youtube.com/watch?v=bx0RQJDlGbY
https://www.zdnet.com/article/hackers-are-going-after-cisco-rv320rv325-routers-using-a-new-exploit/

Vulnerable Software

Type: Configuration

Vendor: cisco

Product: rv320_firmware

Operating System: * * *

Trait: 
{
  "children": [
    {
      "cpe_match": [
        {
          "cpe23uri": "cpe:2.3:o:cisco:rv320_firmware:1.4.2.15:*:*:*:*:*:*:*",
          "vulnerable": true
        },
        {
          "cpe23uri": "cpe:2.3:o:cisco:rv320_firmware:1.4.2.17:*:*:*:*:*:*:*",
          "vulnerable": true
        }
      ],
      "operator": "OR"
    },
    {
      "cpe_match": [
        {
          "cpe23uri": "cpe:2.3:h:cisco:rv320:-:*:*:*:*:*:*:*"
        }
      ],
      "operator": "OR"
    }
  ],
  "operator": "AND"
}

Source: nvd

Type: Configuration

Vendor: cisco

Product: rv325_firmware

Operating System: * * *

Trait: 
{
  "children": [
    {
      "cpe_match": [
        {
          "cpe23uri": "cpe:2.3:o:cisco:rv325_firmware:1.4.2.15:*:*:*:*:*:*:*",
          "vulnerable": true
        },
        {
          "cpe23uri": "cpe:2.3:o:cisco:rv325_firmware:1.4.2.17:*:*:*:*:*:*:*",
          "vulnerable": true
        }
      ],
      "operator": "OR"
    },
    {
      "cpe_match": [
        {
          "cpe23uri": "cpe:2.3:h:cisco:rv325:-:*:*:*:*:*:*:*"
        }
      ],
      "operator": "OR"
    }
  ],
  "operator": "AND"
}

Source: nvd